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SENDER 



RECIPIENT 



FIG. 1 



replacement 



USE PRIVATE KEY GENERATOR TO 
GENERATE MASTER SECRET AND PUBLIC h^28 
PARAMETERS 



PROVIDE PUBLIC PARAMETERS TO IBE 
PUBLIC PARAMETER HOSTING SERVICE THAT 
IS IDENTIFIED BY AN IBE PUBLIC PARAMETER 
HOSTING SERVICE NAME 
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RECEIVE REQUEST FOR PRIVATE KEY FROM 
RECIPIENT (E.G., RECEIVE INFORMATION ON 
RECIPIENT'S IDENTITY AND OTHER 
RECIPIENT CREDENTIALS) 
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GENERATE PRIVATE KEY FOR RECIPIENT 
(E.G., VERIFY IDENTITY OF RECIPIENT AND 
COMPUTE IBE PRIVATE KEY FROM MASTER 
SECRET AND RECIPIENT'S IBE PUBLIC KEY) 
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PROVIDE PRIVATE KEY TO RECIPIENT (E.G., 
TRANSMIT PRIVATE KEY IN A MESSAGE, 
DOWNLOAD OVER INTERNET, ETC.) 
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replacement 



RECEIVE IBE PUBLIC PARAMETERS FROM I BE 
PRIVATE KEY GENERATOR AND STORE ON 

SERVER 
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PROVIDE SENDERS WITH RULE FOR 
GENERATING SERVICE NAME OF IBE PUBLIC 
PARAMETER HOSTING SERVICE (E.G., EMBED IN 
SOFTWARE DISTRIBUTED WITH SENDERS' 
EQUIPMENT, ALLOW SENDER TO DOWNLOAD 
AND INSTALL PLUG-IN, ETC.) 



PROVIDE COMMUNICATIONS NETWORK 
INFRASTRUCTURE WITH INFORMATION ON 
SERVICE NAME (E.G., PROVIDE DNS SERVERS 
WITH HOST NAME, PROVIDE MAIL SERVERS 
WITH HOST MAIL ADDRESS, ETC.) 
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RECEIVE REQUEST FOR IBE PUBLIC 
PARAMETERS FROM SENDER USING INTERNET 
INFRASTRUCTURE SERVERS 
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PROVIDE PUBLIC PARAMETERS TO SENDER 

(SECURELY) 
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SET UP SENDER'S EQUIPMENT (E.G., ALLOW SENDER TO 
DOWNLOAD AND INSTALL PLUG-IN, DISTRIBUTE 
SOFTWARE ON SENDER'S EQUIPMENT, ETC.) 



PROVIDE SENDER WITH IBE PUBLIC KEY OF RECIPIENT 



PROVIDE SENDER WITH RULE FOR GENERATING 
SERVICE NAME FOR IBE PUBLIC PARAMETER HOSTING 

SERVICE 



SENDER GENERATES SERVICE NAME USING RULE AND 

USING IBE PUBLIC KEY 



OBTAIN IBE PUBLIC PARAMETER INFORMATION FROM 
SERVER (IBE PUBLIC PARAMETER HOSTING SERVICE) 
USING SERVICE NAME (E.G., USING SERVICE NAME TO 
ESTABLISH COMMUNICATIONS LINK WITH SERVER OR 
EXCHANGE MESSAGES WITH SERVER) AND USING 
INTERNET INFRASTRUCTURE SERVERS 

i 

ENCRYPT MESSAGE USING PUBLIC PARAMETER 
INFORMATION AND IBE PUBLIC KEY OF RECIPIENT 



SEND ENCRYPTED MESSAGE TO RECIPIENT 
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RECEIVE ENCRYPTED MESSAGE AT 
RECIPIENT 
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SET UP EQUIPMENT OF RECIPIENT (IF NOT 
ALREADY SET UP) (E.G., ALLOW RECIPIENT TO 
DOWNLOAD AND INSTALL PLUG-IN, DISTRIBUTE 
SOFTWARE ON RECIPIENT'S EQUIPMENT, ETC.) 



PROVIDE RECIPIENT WITH IBE PRIVATE KEY (IF 
NOT ALREADY PROVIDED) (E.G., ALLOW 
RECIPIENT TO ELECTRONICALLY OBTAIN PRIVATE 
KEY OVER A SECURE COMMUNICATIONS PATH, 
ALLOW RECIPIENT TO RETRIEVE PREVIOUSLY 
DISTRIBUTED PRIVATE KEY, ETC.) 



DECRYPT MESSAGE FROM SENDER USING 

PRIVATE KEY / 



FIG. 5 



replacement 



SENDER USES IBE PUBLIC KEY OF RECIPIENT AND 
RULE TO GENERATE SERVICE NAME OF HOST SERVER 
(E.G., SENDER PREPENDS A SPECIAL STRING TO THE 
DOMAIN NAME PORTION OF RECIPIENT'S MESSAGE 

ADDRESS) 
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SENDER USES SERVICE NAME TO ESTABLISH SECURE 
COMMUNICATIONS LINK TO HOST (E.G., SENDER 
QUERIES A DNS SERVER FOR AN IP ADDRESS 
ASSOCIATED WITH THE HOST NAME AND 
ESTABLISHES AN https:// CONNECTION WITH THE 
HOST) AS PART OF SECURE LINK SET UP 
PROCEDURE, HOST PROVES ITS IDENTITY TO SENDER 
(E.G., BY PROVIDING SENDER WITH A CERTIFICATE 
THAT CONTAINS HOST IDENTITY INFORMATION THAT 
THE SENDER COMPARES TO THE SERVICE NAME) 
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SENDER REQUESTS AND RECEIVES IBE PUBLIC 
PARAMETER INFORMATION FOR RECIPIENT OVER 

SECURE LINK 
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SENDER USES IBE PUBLIC KEY OF RECIPIENT AND 
RULE TO GENERATE SERVICE NAME OF HOST 
SERVER (E.G., SENDER PREPENDS SPECIAL 
STRING TO THE DOMAIN NAME PORTION OF 
RECIPIENT'S ADDRESS TO GENERATE EMAIL 
ADDRESS OF HOST) 
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SENDER USES SERVICE NAME TO SEND REQUEST 
FOR IBE PUBLIC PARAMETER INFORMATION TO 

HOST SERVER (E.G., IMPLICIT OR EXPLICIT 
REQUEST IN EMAIL). CAN ALSO REQUEST OVER 

INSECURE LINK. 
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HOST SERVER RESPONDS TO REQUEST BY 
PROVIDING IBE PUBLIC PARAMETERS TO SENDER 

(E.G., SERVER PROVIDES IBE PUBLIC 
PARAMETERS AND HOST SERVER IDENTIFICATION 
INFORMATION TO SENDER WHICH HAVE BEEN 
SIGNED BY A CERTIFICATE AUTHORITY). 
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. SENDER RECEIVES IBE PUBLIC PARAMETER 
INFORMATION AND VERIFIES HOST SERVER 
IDENTITY IS AS EXPECTED 
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